
What is claimed is: 

1 1. A method for secured access to data in a network 

2 including an information center and a plurality of data area access 

3 systems in which permission to store and define access rights of 

4 third parties to data at the information center are limited to the 

5 owner of rights to said data to be stored, said method comprising 

6 the steps of: 

7 a) in each case storing the data only once in one of said 

8 data area access systems not accessible to the owner of the rights; 

9 then 

10 b) registering the presence of data of a certain type in 

11 each data area access system at said information center, followed 

12 by the owner of the rights to the stored data, should he wish, 

13 defining access rights of third parties to said data at said 

14 information center; 

15 c) transmitting a list of the data present of a certain 

16 type, specifying the data area access system storing said data, 

17 from said information center to a requesting data area access 

18 system for which the access rights of said requesting data area 

19 access system correspond to the access rights defined at said 

20 information center for said data, and after a request of a 

21 requesting data area access system for data of said certain type; 

22 and then 

23 d) directly transmitting said data of said certain type by 

24 said data area access system storing said data to said requesting 

19 


25 
26 
27 


data area access system subject to said data area access system 
storing said data having received a confirmation from said 
information center. 


1 2. A method as defined in Claim 1 wherein an 

2 authorization of the storage of data and of the definition of the 

3 access rights of third parties to the data takes place by means of 

4 an identity check of the owner of the rights to the data. 

1 3. A method as defined in Claim 1 or 2, wherein data to 

2 be stored are stored in said data area access system with an 

3 electronic form which contains the type of the data. 

1 4 . A method as defined Claim 1 wherein a data area 

2 access system (1) storing data responds to a request for certain 

3 data of a certain type by a requesting data area access system (2) 

4 by verifying the access rights through an inquiry to the 

5 information center (3) as to whether the requesting data area 

6 access system has access rights to the certain data of a certain 

7 type. 

1 5. A method as defined in Claim 1, wherein a data area 

2 access system receiving certain data of a certain type allows 

3 access to the received data only directly after a respective 

4 reception of said data. 
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1 6. A method as defined in Claim 1, wherein a data area 

2 access system storing certain data of a certain type grants access 

3 to the certain data of a certain type only if a positive 

4 verification has taken place through an inquiry to the information 

5 center as to whether said data area access system storing said 

6 certain data of a certain type can show access rights for said 

7 certain data of a certain type. 

1 7. A method as defined in Claims 1 wherein the 

2 information center is notified by a data area access system having 

3 new data about the presence of new data of a certain type, 

4 whereupon said information center sends a notifying confirmation to 

5 the data area access system. 

1 8. A method as defined in Claim 1 wherein said data are 

2 identified on the basis of an identification which is allocated as 

3 a unique identification by said information center and is 

4 transmitted by said information center after a registration of new 

5 data to the data area access system storing said data, in order for 

6 said system to append the respective identification to the 

7 respective data. 
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1 9. A method as defined in Claims 1 wherein, after an 

2 inquiry for data of a certain type by a data area access system, 

3 said information center prepares a list of all the data present of 

4 this certain type before it verifies the access rights to the data 

5 of the certain type, in order to transmit the list of data present 

6 of this certain type, specifying the data area access system 

7 respectively storing these data, to the requesting data area access 

8 system for which the requesting data area access system can show 

9 said access rights. 

1 10 ♦ A method as defined in Claim 1 wherein, when data 

2 access is desired by a data area access system to data of a certain 

3 type, firstly a request for such data of the certain type is sent 

4 to the information center. 

1 11. A method as defined Claim 1 wherein, when data 

2 transmission is desired from a data area access system storing data 

3 to a requesting data area access system, firstly a request for 

4 certain data of a certain type is sent by the latter system to the 

5 data area access system storing these certain data of a certain 

6 type. 

1 12. A method as defined in Claim 1, wherein the data in 

2 a data area access system are stored in a secure data memory, no 

3 direct access being possible to the data stored therein. 
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1 13. A method as defined in Claim 1 wherein the type of 

2 the data is determined by their content and/or the owner of the 

3 rights to the data, 

1 14. A method as defined in Claim 1 wherein the access 

2 rights to stored data can be defined by the owner of the rights to 

3 the data at any point in time after their registration at the 

4 information center and, after that, can be changed again as desired 

5 by a re-definition by the owner of the rights to the data. 

1 15. A method as defined in Claim 1 wherein the access 

2 rights to stored data can be granted by the owner of the rights to 

3 the data when they are stored in a data area access system. 

1 16. A method as defined in Claim 1 wherein 

2 communication between a data area access system and the information 

3 center or another data area access system takes place in encrypted 

4 form. 
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1 17. A method as defined in Claim 16/ wherein the sender 

2 provides the information sent by him with a digital signature by 

3 means of a secret signature code, whereby the recipient can verify 

4 the sent information by means of an associated public signature 

5 code. 

1 18. A method as defined in Claim 16 or 17 wherein the 

2 sender encodes all transmitted data by means of a public encryption 

3 code issued by the recipient, whereby only the recipient can decode 

4 the transmitted data by means of a secret encryption code. 

1 19. A method as defined in Claim 16 wherein not only 

2 each data area access system and the information center but also 

3 each participant has a secret signature code and a secret 

4 encryption code and a public signature code and a public encryption 

5 code. 

1 20. A method as defined in Claim 19 wherein the secret 

2 signature codes and encryption codes and/or public signature codes 

3 and encryption codes of a participant are stored on a data carrier, 

4 such as a smart card. 

1 21. A method as defined in Claim 1 wherein a participant 

2 accessing the network must authorize himself and his identity is 

3 verified by the information center. 
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1 22. A method as defined in Claim 21 wherein the 

2 identity of a participant is stored on a data carrier such as a 

3 smart card. 

1 23. A method as defined in Claim 1 wherein the 

2 permission for storing the data is given by the owner of the rights 

3 to the data at the latest when the data are registered at the 

4 information center, said information center not allowing any 

5 subsequent data access to these data without correct authorization. 

1 24. A method as defined in Claim 1 wherein, when the 

2 data are transmitted, the appropriation specified by the owner of 

3 the access rights for the transmission of these data in the 

4 original data context is transmitted together with these data in 

5 the form of an electronic watermark and these data are additionally 

6 marked visibly as an appropriated copy of the original data. 
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